[Samba] auth to two diff PDCs? (success, sort of)
Mike Brodbelt
m.brodbelt at acu.ac.uk
Tue Oct 29 13:00:02 GMT 2002
Collins, Kevin wrote:
> Hi All:
>
> Excuse me for butting in here, but I'm planning a migration from WinNT 4
> to Samba in the near future and this thread has caused me to worry a
> little.
>
> Take the case that I'm planning: 3 Domains each to its own LAN
> (connected via 128k Frame Relay lines to form a WAN) Each domain
> currently has a NT 4 PDC and each domain "trusts" each other. How do I
> accomplish these "trusts" only using Samba PDCs?
With difficulty. There are a number of ways to hack round the problem
which you'll find if you search, but it's not supported functionality ATM.
> Meaning: If I rip out the NT Domains, replace the PDCs with Samba PDCs
> and rebuild new domains (new Domain Names, new NetBIOS names for the
> PDCs, etc.) How do I get the three domains to once again trust each
> other? Is there a Samba command to do this?
Not at present. The current release branch of Samba (2.2.x) does not
support trust relationships between domains. Samba 3.x will support this
functionality, and I believe the code is already in CVS to do it.
You could get an alpha of Samba 3.x, or a CVS checkout, and try to make
it work with that. If I were you, I think I'd try this, but run 2 copies
of Samba on each server, 3.x alpha for the PDC aspect, and 2.2.x for the
actual file/print serving. You can bind two IP's to the NIC in your
machines, and run 3.x on one IP, and 2.2 on the other.
Mike.
More information about the samba
mailing list